Audit shows IRS failed to adequately identify security weaknesses

The U.S. Internal Revenue Service used a flawed and ineffective process for monitoring system security weaknesses, according to a report recently released by the Treasury Inspector General for Tax Administration.

The IRS failed to accurately and completely describe security weaknesses, understated the number of weaknesses, and overstated progress in addressing the weaknesses, the report said.

Specifically, the agency prepared nearly identical reports for each system, noting only broad control topics rather than specific problems.

Also, the IRS assumed that if a system was certified and accredited, then nearly all of its weaknesses had been addressed. "This assumption is not valid since certified and accredited systems can still have security weaknesses," the IG wrote.

As a result of the flawed process, the information given to the Office of Management and Budget and the Inspector General has been "inaccurate and misleading," according to the audit.

IRS management agreed with the audit's findings and has established a working group to develop an approach for managing the process.

Home Affairs to unleash AI on sensitive government data

Virgin Australia, Wesfarmers strike OpenAI agreements

HSBC taps Mistral to supercharge generative AI rollout

ASX announcements platform disrupted by operational issue

Watt flags more fed insourcing after BoM website outrage

Audit shows IRS failed to adequately identify security weaknesses

The U.S. Internal Revenue Service used a flawed and ineffective process for monitoring system security weaknesses, according to a report recently released by the Treasury Inspector General for Tax Administration.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

WA man jailed for at least five years for evil twin attack

Labor bets on agency to monitor AI companies

Startup finds flaws in popular VoIP products

Bendigo Bank taps Google Cloud for first major AI project

Most popular tech stories

CBA finds its first chief AI officer

Chemist Warehouse's AI tool for HR becoming a "standard pattern"

News Corp Australia taps IAG digital exec as next CDTO

QBE backs leadership and startup culture to deliver transformation

NSW DPHI's latest digital transformation driven by housing reforms

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Perth IoT vendor Digital Matter names new chief executive

Govt launches consumer tech label program for smart devices

Axis Communications opens experience centre in Sydney tech hub

Home Affairs to unleash AI on sensitive government data

Virgin Australia, Wesfarmers strike OpenAI agreements

HSBC taps Mistral to supercharge generative AI rollout

ASX announcements platform disrupted by operational issue

Watt flags more fed insourcing after BoM website outrage

Audit shows IRS failed to adequately identify security weaknesses

The U.S. Internal Revenue Service used a flawed and ineffective process for monitoring system security weaknesses, according to a report recently released by the Treasury Inspector General for Tax Administration.

Partner Content

Sponsored Whitepapers

Events

Most Read Articles

WA man jailed for at least five years for evil twin attack

Labor bets on agency to monitor AI companies

Startup finds flaws in popular VoIP products

Bendigo Bank taps Google Cloud for first major AI project

Most popular tech stories

CBA finds its first chief AI officer

Chemist Warehouse's AI tool for HR becoming a "standard pattern"

News Corp Australia taps IAG digital exec as next CDTO

QBE backs leadership and startup culture to deliver transformation

NSW DPHI's latest digital transformation driven by housing reforms

HamiltonJet partners with digital services provider Fortude

SentinelOne signs distribution agreement with Sektor

Rapid7’s new SIEM combines exposure management with threat detection

The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff

Bluechip Infotech enters final stage of Goodson Imports acquisition

Blackberry celebrates "giant step forward"

'Touch-free' smartphone controlled with head movements

Perth IoT vendor Digital Matter names new chief executive

Govt launches consumer tech label program for smart devices

Axis Communications opens experience centre in Sydney tech hub

Log In